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DETAILED ACTION 

Response to Arguments 

Applicant's arguments filed June 9, 2005 have been fully considered but they are 
not persuasive. 

In response to applicant's argument that the references fail to show certain 
features of applicant's invention, it is noted that the features upon which applicant relies 
(i.e., "the use of digital signatures in the encryption stage (e.g. when plaintext is 
encrypted)") are not recited in the rejected claim(s). Although the claims are interpreted 
in light of the specification, limitations from the specification are not read into the claims. 
See In re Van Geuns, 988 F.2d 1 181, 26 USPQ2d 1057 (Fed. Cir. 1993). Claim 1 
discloses the step of encrypting, including producing an ephemeral key followed by the 
signing step wherein the ephemeral key pair is then used to sign a digital signature. 
Nowhere does the applicant include within the first encrypting step the use of a digital 
signature. 

Applicant's next set of arguments are in response to the Examiner's rejection of 
claim 1 in view of Vanstone, column 3 lines 1-7 and 39-43. Although the Applicant 
includes a citation of lines 1-7 claiming that they fail to disclose all limitations of step (a) 
of claim 1 , there is no mention of lines 39-43. The Examiner would like to once again 
bring to the attention of the Applicant lines 39-43 which clearly recite, "a key is 
associated with each of the cryptographic units to convert plaintext carried between 
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each unit and its respective correspondent into ciphertext carried on the channel", and 
provide ample support for the limitations of step (a) of claim 1 . 

Applicant goes on to argue the use of digital signatures within the Vanstone 
reference, specifically column 3 lines 1-10 and column 4 lines 62-64. According to the 
Applicant, "the cited sections are not referring to the digital signatures in the context of 
encrypting a plaintext message as required by claim 1" (page 14 lines 22-24). However, 
the Examiner would like to point out that claim 1 specifically separates the encrypting 
step from the signing step, and fails to mention the signing of a digital signature within 
the encryption step. Although the claims are interpreted in light of the specification, 
limitations from the specification are not read into the claims. See In re Van Geuns, 988 
F.2d 1181, 26 USPQ2d 1057 (Fed. Cir. 1993). 

Applicant's next argument is in response to Examiner's classification of 
Vanstone's key pair as an "ephemeral key pair". Applicant cites line 1 of column 4 of 
the Vanstone reference, stating that "the public key (which with the private key forms 
the key pair) is 'issued by a trusted center' ". However, the Examiner does not agree 
with the Applicant's interpretation of the cited portion, pointing out that the phrase reads 
in its entirety "If the correspondent B possesses an authentic copy of correspondent A's 
public key, then text A will contain A's public-key certificate, issued by a trusted center; 
correspondent B can use his authentic copy of the trusted center's public key to verify 
correspondent A's certificate, hence obtaining an authentic copy of correspondent A's 
public key". It is the public-key certificate that is issued by the trusted center, not the 
public-key. Examiner maintains that Vanstone's key pair is ephemeral, once again 
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citing Vanstone column 3, lines 1-5 which provide for the selection of a 'random integer' 
and further including lines 5-10 of column 5 of Vanstone wherein it is specifically 
mentioned that A will destroy the random integer x as soon as it is used the first time. 

Applicant's last argument is in regards to the Examiner's rejection of claim 4 in 
view of lines 1-5, of column 3 of the Vanstone reference and section 8.4 of the Applied 
Cryptography reference (including Algorithm 8.17). The Applicant claims that these 
passages are directed to key generation for use in a stage 1 key establishment process 
as opposed to the generation of an encryption ephemeral private key and calculation of 
an ephemeral public key as required by claim 4. However, the Applicant has failed to 
show how the key pairs of the prior art are different from those of the current invention 
and why they could not be used. 

Therefore, based on the above arguments, the Examiner maintains the rejections 
as set forth below. 

The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 

Claim Rejections - 35 USC § 102 

Claims 1-10, 16-25, and 31-40 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Vanstone et al., US Pat 5,761,305. Alfred Menezes, Paul van Oorschot 
and Scott Vanstone's Handbook of Applied Cryptography, hereinafter referred to as 
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Applied Cryptography, has been relied upon for inherent qualities of public-key 
cryptosystems. 

Regarding Claims 1, 16, and 31, Vanstone teaches a public-key encryption 
process and system comprising the steps of: 

a) encrypting a plaintext message into a ciphertext message, the encrypting step 
includes the step of producing an ephemeral key pair (see Vanstone col. 3 lines 1-7, 39- 
43); and 

b) signing a digital signature using the ephemeral key pair (see Vanstone col. 3 
lines 1-10; col.4 lines 62-64; see also Applied Cryptography section 12.5.2, Remark 
12.41). 

Please note that although the phrase 'ephemeral key pair' does not appear in the 
Vanstone reference, Vanstone's key pair is generated new each time it is needed, 
without repetition and discarded once used, which by definition makes it an ephemeral 
key pair. 

Regarding Claims 2, 17, and 32, Vanstone teaches a public-key encryption 
process and system wherein the encrypting step uses an El Gamal encryption scheme 
(see Vanstone col. 3 line 60 thru col.4 line 40; see also Applied Cryptography section 
12.5.2). 
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Regarding Claim 3, Vanstone teaches a public-key encryption process wherein 
the step of signing a digital signature comprises generating the digital signature using a 
Nyberg-Rueppel digital signature scheme; 

wherein the step of generating the digital signature includes hashing the plaintext 
message (col. 3 line 60 thru col.4 line 40; see also Applied Cryptography sections 9.1 
and 12.5.2). (Note that reference to 'EIGamal-family signature schemes' includes the 
Nyberg-Rueppel digital signature scheme). 

Regarding Claims 18, and 33, Vanstone teaches a public-key encryption process 
and system wherein the step of signing a digital signature comprises generating the 
digital signature using a Nyberg-Rueppel digital signature scheme (see Vanstone col. 3 
line 60 thru col.4 line 40; see also Applied Cryptography sections 9.1 and 12.5.2). (Note 
that reference to 'EIGamal-family signature schemes' includes the Nyberg-Rueppel 
digital signature scheme). 

Regarding Claims 4, 19, and 34, Vanstone teaches a public-key encryption 
process and system, wherein the step of producing the ephemeral key pair comprises 
the steps of generating an encryption ephemeral private key x and calculating an 
encryption ephemeral public key X = xG, where G is a generator (see Vanstone col. 3 
lines 1-5; see also Applied Cryptography section 8.4 and Algorithm 8.17). 
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Regarding Claims 5, 20, and 35, Vanstone teaches a public-key encryption 
process and system for encrypting messages for communication between a sender and 
a receiver, the process further comprising the steps of, 

at the sender, 

a) generating a sender private key a; and 

b) calculating a sender public key A = aG, where G is a generator, 
and at the receiver, 

a) generating a receiver private key b; and 

b) calculating a receiver public key B = bG, 

wherein the sender obtains an authentic copy of the receiver public key B and 
the receiver obtains an authentic copy of the sender public key A (see Vanstone col. 3 
line 60 thru col.4 line 4; see also Applied Cryptography section 8.4.1). 

Regarding Claims 6, 21, and 36, Vanstone teaches a public-key encryption 
process and system, wherein the step of producing the ephemeral key pair comprises 
the steps of generating an encryption ephemeral private key x and calculating an 
encryption ephemeral public key X = xG (see Vanstone col. 3 lines 5-7; see also Applied 
Cryptography sections 8.4.1, 12.2.2, 12.5.2, and Remark 12.41). 

Regarding Claims 7, 22, and 37, Vanstone teaches a public-key encryption 
process and system, further comprising the steps of, 
at the sender, 
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generating a secret key K = xB and encrypting a plaintext message using the 
secret key K to generate a ciphertext message (see Vanstone col. 3 lines 21-24, 39-43; 
see also Applied Cryptography section 8.4.1). 

Regarding Claims 8, 23, and 38, Vanstone teaches a public-key encryption 
process and system, further comprising the steps of, 
at the sender, 

using the encryption private key x as a signature ephemeral private key and 
using the encryption ephemeral public key X as a signature ephemeral public key to 
generate a digital signature (see Vanstone col. 3 lines 5-7; see also Applied 
Cryptography sections 1 1.5.4, 12.2.2, 12.5.2, and Remark 12.41). 

Regarding Claims 9, 24 and 39, Vanstone teaches a public-key encryption 
process and system, 

wherein the digital signature comprises a first value r and a second value s, the 
process further comprising the step of, 

at the sender, 

transmitting the encryption ephemeral public key X, the ciphertext message and 
the second value s of the digital signature to the receiver (see Vanstone col. 3 lines 8- 
10; col.4 lines 27-29; see also Applied Cryptography section 11.5.4). 
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Regarding Claims 10, 25, and 40, Vanstone teaches a public-key encryption 
process and system, further comprising the steps of, 
at the receiver, 

generating the secret key K = bX = bxG = xbG = xB, 

decrypting the transmitted ciphertext message using the generated secret key K, 
calculating the first value r of the digital signature using the decrypted message 

and the transmitted encryption ephemeral public key X and 

validating the digital signature based on the calculated first value r and the 

transmitted second value s (see Vanstone col. 3 lines 21-29, 47-51; see also Applied 

Cryptography section 1 1 .5.4). 

Claim Rejections - 35 USC § 103 

Claims 11-15, 26-30, and 41-45 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Vanstone and Applied Cryptography as applied to claim 1-10, 16-25 
and 31-40 above, and further in view of Boyd et al.'s "Key Establishment Protocols for 
Secure Mobile Communications". 

Regarding Claim 11, Vanstone teaches a the public-key encryption process of 
Claim 1, wherein at least a two-stage public-key encryption process is used; wherein 
the first stage includes key establishment and the second stage includes 
encryption/decryption (see Vanstone col. 3 lines 52-59); wherein said steps (a) and (b) 
are performed during the second stage of encryption (see Vanstone col. 3 lines 44-51). 
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Vanstone does not teach the abovementioned encryption process implemented 
in a wireless communication system or device. 

Boyd et al. teaches the implementation of a public-key encryption process and 
system in a wireless communication system (see Boyd). 

It would be obvious to one of ordinary skill in the art to employ the public key 
encryption process and system of Vanstone within a wireless communication system to 
secure information being transmitted wirelessly. 

Regarding Claims 12-15, 26-30 and 41-45, Vanstone teaches a public-key 
encryption process and system, but fails to teach its implementation in a wireless hand- 
help communication system. 

Boyd et al. teaches the implementation of a public-key encryption process and 
system in a wireless communication system (see Boyd). 

It would be obvious to one of ordinary skill in the art to employ the public key 
encryption process and system of Vanstone within a wireless communication system or 
device to secure information being transmitted wirelessly. 

Claims 1, 16, and 31 are also rejected under 35 U.S.C. 102(b) as being 
anticipated by the IBM System Digital Signature Data Structure Format, IBM TDB 
NN9305343. 
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Regarding Claims 1, 16,and 31, IBM teaches a public-key encryption process 
and system comprising the steps of: 

a) encrypting a plaintext message into a ciphertext message, the encrypting step 
includes the step of producing an ephemeral key pair (see IBM); and 

b) signing a digital signature using the ephemeral key pair (see IBM). 

Although Examiner finds the entire IBM document relevant, attention is drawn to 
the following passage: 

"The cryptographic facility access program (CFAP) contains cryptographic 
algorithms consisting of the DEA and RSA public key algorithm, each capable of 
performing encrypt and decrypt operations. The CFAP contains a function to generate 
a pair of RSA keys, which is called PKG. The CFAP contains a set of cryptographic 
functions, which, as a by-product of function execution, generate a system digital 
signature. The CFAP also contains an Application Signature Generate (ASG) function 
for producing application digital signatures." 

Note that although the phrase 'ephemeral key pair' does not appear in the 
abovementioned passage, IBM utilizes the RSA algorithm, which is known to utilize 
session keys, which are by definition ephemeral keys. For example, SSL has been 
using these ephemeral RSA keys publicly as far back as 1993. 
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Conclusion 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .1 36(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tamara Teslovich whose telephone number is (571) 
272-4241 . The examiner can normally be reached on Mon-Fri 8-4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Emmanuel Moise can be reached on (571) 272-3865. The fax phone 
number for the organization where this application or proceeding is assigned is 703- 
872-9306. 



Application/Control Number: 09/594,368 



Page 13 



Art Unit: 2137 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 




